BackOrifice Software Detection

critical Nessus Plugin ID 10024

Synopsis

The remote host has a backdoor program installed.

Description

The remote host seems to be running BackOrifice 1.x with no password. BackOrifice is a trojan which allows an intruder to take control of the remote computer.

Solution

Remove BackOrifice from your computer.

Plugin Details

Severity: Critical

ID: 10024

File Name: backorifice1.nasl

Version: 1.36

Type: remote

Family: Backdoors

Published: 7/29/1999

Updated: 4/23/2024

Configuration: Enable paranoid mode, Enable thorough checks

Supported Sensors: Nessus

Risk Information

CVSS Score Rationale: Score based on an in-depth analysis by tenable.

CVSS v2

Risk Factor: Critical

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: manual

Vulnerability Information

Required KB Items: Settings/ParanoidReport, Settings/ThoroughTests